Skip to content
Tool to specify audit configurations on a process
C Roff Makefile
Branch: master
Clone or download
csjayp Merge pull request #11 from 0mp/patch-1
Encourage to install setaudit from FreeBSD ports
Latest commit be93921 Mar 27, 2018
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore Add gitignore Mar 18, 2018
Makefile Fix the manual page installation Mar 22, 2018
README.md Encourage to install setaudit from FreeBSD ports Mar 27, 2018
VERSION Fix term addresses with v6 Mar 18, 2018
setaudit.8 Reference the setaudit system call Mar 21, 2018
setaudit.c

README.md

setaudit

With setaudit it is possible to specify audit configurations on a process directly at the runtime.

All audit events are redirected to the auditd(8), an audit log management daemon.

Usage

setaudit [-46] [-a auid] [-m mask] [-s source] [-p port] command ...

Example

Example of enabling all exe related audit events performed by a command and its child processes:

setaudit -m ex command

Installation

setaudit can be found in the FreeBSD Ports under security/setaudit:

  • pkg install security/setaudit
  • cd /usr/ports/security/setaudit/ && make install clean
You can’t perform that action at this time.